Method and system for evaluating confidence in a sending domain to accurately assign a trust that a communication is not unwanted

ABSTRACT

A method and system for identifying whether an electronic communication is likely to be unwanted by the recipient is provided. A trust system relies on a trust provider, such as a sending domain, to indicate whether an electronic communication is likely to be unwanted. The sending domain may assign its trust level to the electronic communications based on various factors. Upon receiving the electronic communication and the trust level assigned by the sending domain, the receiving domain may determine whether to forward the electronic communication to the recipient based on the trust level. If a sending domain consistently provides trust levels that are accurate assessments of whether electronic communications are unwanted, then the receiving domain learns to trust the trust levels assigned by the sending domain. In contrast, if the assigned trust levels are not accurate, then the receiving domain learns not to trust the sending domain and may discard all message from the receiving domain without forwarding them to the recipients.

TECHNICAL FIELD

The described technology relates generally to determining whether anelectronic communication, such as an instant messaging request or anelectronic mail message, may be unwanted.

BACKGROUND

Electronic communications, such as electronic mail messages and instantmessages, are increasingly being used for both business and personaluses. Electronic communications have many advantages over nonelectroniccommunications, such as postal mail. These advantages include low cost,rapid delivery, ease of storage, and so on. Because of these advantages,electronic communications have resulted in many benefits includingincreased worker productivity, more informed decision making, and so on.These benefits, however, are currently being limited because of the vastnumber of unwanted electronic communications, also known as “junk mail”or “spam,” that are being sent via the Internet.

Because of the advantages of low cost and rapid delivery, manyorganizations use electronic communications to advertise by sendingelectronic communications that most recipients do not want to receive.For example, a mortgage company may purchase a list of electronic mailaddresses and send an electronic mail message containing anadvertisement for the mortgage company to each electronic mail address.Since the cost of sending each electronic mail message is extremelysmall, an organization can cost effectively send thousands and evenmillions of electronic mail messages containing their advertisements.Even if only a small fraction of a percent of the recipients respond tothe advertisement, the benefits to the organization may outweigh thesmall cost of sending the electronic mail messages.

Because many organizations send advertisements via electronic mailmessages, it is not uncommon for a person to receive many unwantedelectronic mail messages a day. People receiving such unwantedelectronic mail messages typically find them annoying. Indeed, theirproductivity can decrease significantly as they separate the unwantedfrom the wanted electronic mail messages. Unwanted electronic mailmessages may also cause a person's inbox to become full and may make itdifficult to locate and identify wanted electronic mail messages.

Various techniques have been developed to combat unwanted electronicmail messages. For example, some electronic mail systems allow a user tocreate a black list of unwanted electronic mail senders. When anelectronic mail message is received from a sender on the black list, theelectronic mail system may automatically discard the unwanted electronicmail message or may automatically store the unwanted electronic mailmessage in a special folder. When an unwanted mail message is receivedfrom a sender who is not currently on the black list, the recipient canindicate to add that sender to the black list. As another example, someelectronic mail systems may allow the recipient to specify a white listof allowed senders. If an electronic mail message is received from asender who is not on the white list, then the electronic mail system mayautomatically discard or otherwise specially handle such an electronicmail message.

Instant messaging systems also have problems with unwanted instantmessage requests that, in some respects, could be more problematic thanthe problems associated with unwanted electronic mail. In particular,because instant messaging to be effective requires that a person'sattention will be directed to an instant message as it is received, whenan unwanted instant message request is received, that person's attentionis unnecessarily distracted by an unwanted instant message request. Theunwanted instant message request may be a request to obtain presenceinformation of the recipient, to invite the recipient to join in aninstant messaging session with the sender of the request, and so on.Since electronic mail systems do not require such attention of therecipient, unwanted messages can present more problems to instantmessaging systems than to electronic mail systems.

The problems resulting from unwanted instant message requests have notbeen particularly significant because instant messaging systems havetraditionally been restricted to a single domain. Such instant messagingsystems could prohibit instant message requests from outside the domainand could control unwanted instant message requests from originatingwithin the domain. For example, if the domain comprises the computersystems of a company, then the management of the company could takeaction against an employee who sends unwanted instant message requests.

It is anticipated, however, that inter-domain instant messaging willincrease. As a result, instant messaging users will likely receiveunwanted instant message requests from outside their domain. It would bedesirable to have a way to identify whether communications, such asinstant message requests and electronic mail messages, sent from otherdomains are likely to be unwanted by the recipient.

SUMMARY

A method and system for identifying whether an electronic communicationis likely to be unwanted by the recipient is provided. A trust systemrelies on a trust provider, such as a sending domain, to assign a trustlevel indicating whether an electronic communication is likely to beunwanted. The sending domain may base its trust level on various factorsincluding the history of electronic communications sent by that sender.Upon receiving the electronic communication and the trust level assignedby the sending domain, the receiving domain may determine whether toforward the electronic communication to the recipient based on the trustlevel. If a sending domain consistently assigns trust levels that areaccurate assessments of whether its electronic communications areunwanted, then the receiving domain learns to trust the trust levelsassigned by the sending domain. In contrast, if the assigned trustlevels are not accurate, then the receiving domain learns not to trustthe sending domain and may discard all messages from the sending domainwithout forwarding them to the recipients.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 is a block diagram that illustrates computer systems that use thetrust system in one embodiment.

FIG. 2 is a block diagram that illustrates computer systems that use thetrust system with an independent trust provider in one embodiment.

FIG. 3 is a block diagram that illustrates components of the trustsystem at an access point of a receiving domain in one embodiment.

FIG. 4 is a flow diagram that illustrates the processing of a sendelectronic message component of an access point of a sending domain inone embodiment.

FIG. 5 is a flow diagram that illustrates the processing of the receiveelectronic message component of an access point of a receiving domain inone embodiment.

FIG. 6 is a flow diagram that illustrates the processing of an evaluatetrust level component of an access point of a receiving domain in oneembodiment.

FIG. 7 is a flow diagram that illustrates the processing of a checkblock list component of an access point of a receiving domain in oneembodiment.

DETAILED DESCRIPTION

A method and system for identifying whether an electronic communicationis likely to be unwanted by the recipient is provided. In oneembodiment, a trust system relies on a trust provider, such as a sendingdomain, to indicate whether an electronic communication is likely to beunwanted. For example, whenever an electronic communication is sent fromone domain to another domain, the sending domain may assign a level oftrust it has that the electronic communication will not be unwanted bythe recipient. The sending domain may base its trust level on variousfactors including the history of electronic communications sent by thatsender. Upon receiving the electronic communication and the trust levelassigned by the sending domain, the receiving domain may determinewhether to forward the electronic communication to the recipient basedon whether a trust criterion is satisfied. The trust criterion may besatisfied when the trust level is above a threshold trust level, whenthe sending domain is on a list of domains whose electroniccommunications are allowed, and so on. A receiving domain may calculatethe confidence it has in the trust levels assigned by a sending domainand factor in that confidence when determining whether to forwardelectronic communications to recipients within the receiving domain. Forexample, if the receiving domain determines that the trust levelsassigned by a sending domain accurately reflect whether electroniccommunications from the sending domain are unwanted or not, then thereceiving domain may have high confidence in the sending domain. If asending domain, however, consistently assigns trust levels that are notaccurate assessments of whether electronic communications are unwanted,then the receiving domain may block some or all of the electroniccommunications from that sending domain. Thus, sending domains have anincentive to assign trust levels to messages or senders that accuratelyreflect whether electronic communications that originate from theirdomains are unwanted (“real trust level”). If receiving domains do nothave confidence in the trust levels of a sending domain, the receivingdomains may block all (or some portion of) electronic communicationsfrom that sending domain. In this way, sending domains will need todevelop ways to accurately assess trust levels for electroniccommunications originating in their domains and provide those accurateassessments of trust level to the receiving domains to prevent theirelectronic communications from being blocked.

In one embodiment, a sending domain determines the trust level that ithas that an electronic communication is not unwanted based on variousfactors, such as historical sending patterns of the sender, feedbackfrom receiving domains, identity of the sender, fees charged to thesender, and so on. One factor based on historical sending patterns thatmay indicate a sender may not be trusted is when the sender sendshundreds of electronic messages in a short period of time. The receivingdomain may provide feedback to the sending domain as to whether a senderwithin the sending domain is sending unwanted communications. Therecipients at the receiving domain may manually indicate when electroniccommunications are unwanted. In such a case, the receiving domain maynotify the sending domain. The sending domain can then factor thatinformation into its analysis of the trust level of the sender. Inaddition, some sending domains may not know the actual identities of thesenders. For example, the sending domain may provide a free service towhich anyone can subscribe without providing any identificationinformation. In such a case, the sending domain may reduce the trustlevel it has in such subscribers.

In one embodiment, the trust level assigned by a sending domain mayrange from a low trust level to a high trust level. For example, thetrust level may range from 0 to 100, with 0 indicating that the sendingdomain does not know whether the electronic communication is unwantedand with 100 indicating that the sending domain trusts that theelectronic communication is not unwanted. Alternatively, the trust levelmay range from −100 to +100, with a trust level of −100 indicating thatthe sending domain has complete trust that the electronic communicationis unwanted, with 0 indicating that the sending domain does not knowwhether the electronic communication is unwanted or wanted, and with+100 indicating that the sending domain has complete trust that theelectronic communication is not unwanted.

In one embodiment, a receiving domain uses the trust levels provided bythe sending domain (or an independent trust provider) to determinewhether electronic communications should be forwarded to the recipientsor discarded. The receiving domain forwards an electronic communicationwhen a trust criterion is satisfied. The trust criterion may specify acondition in which an electronic communication with a trust level belowa threshold trust level will not be forwarded to the recipient. Thetrust criterion may be based on a combination of various conditions. Thetrust criterion may also use a normalization factor that is specific toa sending domain. For example, one sending domain may assign a trustlevel of 75 on a scale of 0-100 for all its electronic communications,and a second sending domain may assign a trust level of 100 for all itselectronic communications. If all the electronic communications of bothsending domains, however, are indeed wanted, then the receiving domainmay assign a normalization factor of 1.33 to the first sending domainand a normalization factor of 1.00 to the second sending domain. Thereceiving domain may multiply the trust levels of a sending domain byits corresponding normalization factor so that it has a trust level thatis normalized across sending domains. In this example, the trust levelsassigned by each sending domain will have a normalized trust level of100 (e.g., 1.33*75).

In one embodiment, a receiving domain may calculate a confidence levelthat reflects the accuracy of the trust levels assigned by a sendingdomain. A receiving domain may start out with a confidence level of 1.00in each sending domain. Whenever a sending domain sends an electronicmessage that is unwanted and the trust level assigned by the sendingdomain is high, then the receiving domain may decrease its confidencelevel in that sending domain. A receiving domain may block allcommunications from sending domains whose confidence level falls below athreshold confidence level. The receiving domain may also maintain ablock list of sending domains whose electronic communications are not tobe forwarded to its recipients, irrespective of the trust level assignedby the sending domain. The receiving domain may also maintain an allowlist of sending domains whose electronic communications are to beforwarded to its recipients irrespective of the trust level assigned bythe sending domain. An administrator at the receiving domain maymaintain these lists. A receiving domain may also have a separatethreshold trust level for each sending domain.

In one embodiment, a receiving domain may also provide the trust levelto the recipient so that the recipient can determine how to process theelectronic communication. For example, the trust level may be displayedto the recipient along with the identification of the sender and thesending domain. The recipient can then determine whether the electroniccommunication is unwanted. Whenever the recipient determines that anelectronic communication is unwanted, the recipient may notify the trustsystem of its domain so that the trust system can adjust how it handleselectronic communications from the sending domain as appropriate. Therecipient's computer system may apply rules that indicate how to processthe messages automatically based on trust level, sending domain, orsender. For example, one rule may specify to discard all messages belowa certain trust level and another rule may indicate to allow allmessages from a certain sender regardless of trust level. The trustsystem may be implemented at a central access point of a receivingdomain or may be distributed to each client computer system within areceiving domain.

FIG. 1 is a block diagram that illustrates computer systems that use thetrust system in one embodiment. A sending domain 110 and a receivingdomain 120 are connected via communication channel 130. The sendingdomain includes access point 111 and client computer systems 112, andthe receiving domain includes access point 121 and client computersystems 122. All inter-domain electronic communications are sent fromand received by the access points of the domains. The access point ofthe sending domain may include components of the trust system thatidentify the trust level of an electronic communication. The accesspoint of the sending domain may maintain a database of attributes of theelectronic communications sent by each sender within that domain. Theaccess point uses those attributes to determine the trust level ofelectronic communications sent by the senders within the sending domain.The access point of a receiving domain may include components of thetrust system for determining whether the trust criterion is satisfiedfor an electronic communication and for forwarding the electroniccommunication to the recipient when the trust criterion is satisfied.The access point of the receiving domain may determine whether the trustlevel assigned by the sending domain exceeds a threshold trust leveland, if so, forwards the electronic communication to the recipient. Ifnot, the access point of the receiving domain may discard the electroniccommunication assuming that it is unwanted.

FIG. 2 is a block diagram that illustrates computer systems that use thetrust system with an independent trust provider in one embodiment. Asending domain 210, a receiving domain 220, and a trust provider 240 areconnected via communication channel 230. The sending domain includesaccess point 211 and client computer systems 212, and the receivingdomain includes access point 221 and client computer systems 222. Allinter-domain electronic communications are sent from and received by theaccess points of the domains. In this embodiment, the trust system ofthe receiving domain may, however, not rely on the trust level assignedby the sending domain. Rather, the receiving domain may request a trustlevel from the independent trust provider. The independent trustprovider may collect information from receiving domains indicating theirconfidence in the trust levels assigned by various sending domains orindicating their trust in individual senders. The trust provider thengenerates an overall confidence level in the various sending domainsand/or generates independent trust levels for various senders. Thus, theindependent trust provider effectively rates the accuracy of the trustlevel provided by a sending domain or provides a trust level for eachsender. Upon receiving an electronic communication, the access point ofa receiving domain may request an independent trust provider to providethe confidence level for the sending domain and/or trust level for thesender. The independent trust provider may assign a trust level to theelectronic communication. The access point of the receiving domain canthen determine how to process the electronic communication based on theconfidence level and/or trust level provided by the independent trustprovider.

The principles of the trust system may also be used in environmentswhere a service provider operates as a clearinghouse for electroniccommunications. The sending domains may send their electroniccommunications to a clearinghouse service provider domain, rather thandirectly to the receiving domain. The service provider can assess thetrust level assigned by the sending domain to the received electroniccommunication and take appropriate action (e.g., discard or forward toreceiving domain) in much the same way as would a receiving domain.Since the service provider may have visibility to electroniccommunications sent to multiple receiving domains, it may be able tomake a more accurate assessment of the trust level of an electroniccommunication or sender or of the confidence in the accuracy of thetrust levels assigned by a sending domain. When a receiving domainreceives an electronic communication from the service provider, it canassess the confidence it has in the service provider and/or the sendingdomain and process the electronic communication accordingly. Theprinciples of the trust system may be applied transitively to any numberof clearinghouse service providers through which an electroniccommunication is sent. The trust level provided to the receiving domainmay be the trust levels assigned by the sending domain and eachclearinghouse service provider or an aggregate of those trust levels.

FIG. 3 is a block diagram that illustrates components of the trustsystem at an access point of a receiving domain in one embodiment. Atrust system 300 at a receiving domain includes a receive communicationcomponent 301, an evaluate trust level component 302, a maintainblock/allow list component 303, and a maintain normalize factorscomponent 304. The trust system may also include a block list store 305,an allow list store 306, a normalize factors store 307, and a confidencelevel store 308. Each received electronic communication is passed to thereceive communication component. The receive communication componentevaluates the trust level associated with the electronic communicationby invoking the evaluate trust level component. The trust system thendiscards or forwards the electronic communication based on theevaluation. The trust system at the receiving domain also invokes themaintain block/allow list component to identify sending domains whoseelectronic communications should be blocked or allowed. The trust systemmay provide a user interface through which an administrator can maintainthe list or may automatically maintain the list based on evaluation ofthe performance of sending domains. The maintain normalize factorscomponent maintains normalization factors for the sending domains sothat the trust levels from different sending domains can be normalized.The block list store identifies those sending domains whose electroniccommunications should be discarded irrespective of the trust levels. Theallow list store identifies those sending domains whose electroniccommunications should be forwarded to the recipients irrespective of thetrust level. Alternatively, communications from sending domains on theblock list may only be blocked when their trust level is below a certainthreshold trust level and on the allow list may only be allowed whentheir trust level is above a certain threshold trust level. One skilledin the art will appreciate that different threshold trust levels may beapplied to different sending domains. The normalize factors storecontains a normalization factor for each sending domain. The confidencelevel store contains an indication of the confidence in the accuracy ofthe trust levels assigned by each sending domain. The trust system mayupdate the confidence level of a sending domain based on analysis ofelectronic communications received from that domain or may receive theconfidence levels from an independent trust provider.

The computing device on which the trust system is implemented mayinclude a central processing unit, memory, input devices (e.g., keyboardand pointing devices), output devices (e.g., display devices), andstorage devices (e.g., disk drives). The memory and storage devices arecomputer-readable media that may contain instructions that implement thetrust system. In addition, data structures and message structures may bestored or transmitted via a data transmission medium, such as a signalon a communication channel. Various communication channels may be used,such as the Internet, a local area network, a wide area network, or apoint-to-point dial-up connection.

The trust system may be implemented in various operating environmentsincluding personal computers, server computers, hand-held or laptopdevices, set-top boxes, recording devices, routers, switches,multiprocessor systems, microprocessor-based systems, programmableconsumer electronics, network PCs, minicomputers, mainframe computers,distributed computing environments that include any of the above systemsor devices, and the like.

The trust system may be described in the general context ofcomputer-executable instructions, such as program modules, executed byone or more computers or other devices. Generally, program modulesinclude routines, programs, objects, components, data structures, and soon that perform particular tasks or implement particular abstract datatypes. Typically, the functionality of the program modules may becombined or distributed as desired in various embodiments. For example,the functions of the trust system may be performed by access points of adomain or client computer systems within a domain or distributed betweenthe access points and the client computer systems of a domain. Inaddition, various portions of the trust system may be provided byindependent service providers. For example, a sending domain may rely,wholly or in part, on the trust level provided by an independent trustprovider to establish the trust level for senders within the sendingdomain.

FIG. 4 is a flow diagram that illustrates the processing of a sendelectronic message component of an access point of a sending domain inone embodiment. The electronic message may be an electronic mail messagesent to a user of a receiving domain, a request to obtain presenceinformation of a user of the receiving domain or to invite a user of thereceiving domain to participate in an instant messaging session, oranother form of electronic communication. In block 401, the componentidentifies the sender of the message. In block 402, the componentidentifies the recipient of the message. In block 403, the componentinvokes the calculate trust level component and assigns a trust levelthat the message will not be unwanted by the recipient. In block 404,the component adds the assigned trust level to the message. In block405, the component sends the message to the receiving domain and thencompletes.

FIG. 5 is a flow diagram that illustrates the processing of the receiveelectronic message component of an access point of a receiving domain inone embodiment. The component is invoked when a receiving domainreceives a message and wants to determine whether to discard or forwardthe message. In block 501, the component identifies the sender of themessage. In block 502, the component identifies the recipient of themessage. In block 503, the component invokes the evaluate trust levelcomponent to determine how to handle the message. The invoked componentmay return an indication whether to block, allow, or take some otheraction with the received message. In decision block 504, if the invokedcomponent indicates to block the received message, then the componentdiscards the message and completes, else the component continues atblock 505. In decision block 505, if the invoked component indicates tomodify the trust level, the component continues at block 508, else thecomponent continues at block 506. In decision block 506, if the invokedcomponent indicates to allow the received message, then the componentcontinues at block 507, else the component may take some other action.In block 508, the component changes the trust level associated with thereceived message and then continues at block 507. In block 507, thecomponent forwards the message with the trust level to the recipient andthen completes. The client computer system of the recipient may performa similar analysis in deciding how to handle the received message. Forexample, the client computer system may block all electroniccommunications received from certain sending domains.

FIG. 6 is a flow diagram that illustrates the processing of an evaluatetrust level component of an access point of a receiving domain in oneembodiment. The component may check various block and allow lists todetermine how to handle the received message. In block 601, thecomponent determines whether the sending domain is on various blocklists of the receiving domain. In decision block 602, if the sendingdomain is on a block list, then the component returns an indication thatthe received message should be blocked, else the component continues atblock 603. In block 603, the component determines whether the sendingdomain is on an allow list of the receiving domain. In decision block604, if the sending domain is on an allow list, then the componentreturns an indication that the message is allowed, else the componentcontinues at block 605. In block 605, the component may modify the trustlevel and return an indication of the modified trust level.

FIG. 7 is a flow diagram that illustrates the processing of a checkblock list component of an access point of a receiving domain in oneembodiment. The receiving domain may maintain various block lists thatare global to the domain or specific to a recipient within the domain.In addition, the receiving domain may maintain block lists for sendingdomains and for individual senders. In decision block 701, if thesending domain is in a domain block list, then the component continuesat block 705, else the component continues at block 702. In decisionblock 702, if the sending domain is in the recipient's block list, thenthe component continues at block 705, else the component continues atblock 703. In decision block 703, if the sender is in a domain blocklist, then the component continues at block 705, else the componentcontinues at block 704. In decision block 704, if the sender is in therecipient's block list, then the component continues at block 705, elsethe component returns an indication that the received message is notblocked. In block 705, the component retrieves a block trust levelassociated with the block list. In decision block 706, if the trustlevel of the message is greater than the block trust level, then thecomponent returns an indication that the received message is notblocked, else the component returns an indication that the receivedmessage is blocked. One skilled in the art will appreciate that arecipient-specific block list may be maintained and enforced at theclient computer system of the recipient.

One skilled in the art will appreciate that although specificembodiments of the trust system have been described herein for purposesof illustration, various modifications may be made without deviatingfrom the spirit and scope of the invention. The trust system may be usedin conjunction with various technologies that help authenticate thesending domain. As is well known, senders of electronic communicationsoften attempt to mislead the recipient into believing the electroniccommunication is from another legitimate domain. To mislead therecipient, the sender “spoofs” the identity of the legitimate domain byreplacing the identity of their domain in the electronic communicationwith the identity of the legitimate domain. Such spoofing can bedetected by comparing the Internet protocol (“IP”) addresses registeredby the legitimate domain to the IP address of the sender as indicated bythe electronic communication. If the sender's IP address does not matcha registered IP address, then the receiving domain may assume that thelegitimate domain has been spoofed and may discard the electroniccommunication. Techniques for authenticating the sending domain of anelectronic communication are described in U.S. patent application Ser.No. 10/856,259, entitled “Secure Federation of Data CommunicationsNetworks” and filed on May 27, 2004, which is hereby incorporated byreference. Accordingly, the invention is not limited except by theappended claims.

1. A method at a receiving domain for evaluating confidence in a sendingdomain to elsewhere assign accurate trust levels to senders in thesending domain, the method comprising: receiving communications sentfrom senders in the sending domain along with a trust level assigned bythe sending domain to the senders in the sending domain, the trust levelindicating whether the sender of a communication is trusted not to sendunwanted communications; determining whether the received communicationsare unwanted communications; and assigning a confidence level to thesending domain based on how well the trust levels assigned by thesending domain to the senders of the communications correlate to thedetermination as to whether the received communications are unwanted. 2.The method of claim 1 including blocking communications sent fromsenders of the sending domain when the confidence level of the sendingdomain is below a threshold confidence level.
 3. The method of claim 1including forwarding a received communication to a recipient along witha modified trust level for the sender.
 4. The method of claim 3 whereinthe received trust level is modified by factoring in a confidence levelassigned to the sending domain.
 5. The method of claim 1 includingdetermining whether a trust criterion is satisfied for a communicationbased on trust level of the sender and confidence level of the sendingdomain.
 6. The method of claim 1 wherein the trust level is modified bya normalization factor to account for variations in trust levelsassigned by sending domains.
 7. A method for evaluating confidence in atrust level provider to assign accurate trust levels, the methodcomprising: receiving communications; receiving from the trust levelprovider trust levels associated with the communications, the trustlevels indicating trust that a received communication is not an unwantedcommunication; determining whether the received communications areunwanted communications; and determining whether the trust levelprovider is assigning accurate trust levels based on how well the trustlevels assigned by the trust level provider correlate to thedetermination as to whether the received communications are unwanted. 8.The method of claim 7 wherein the trust levels are associated with thesender of a communication.
 9. The method of claim 7 wherein the trustlevels are associated with a sending domain of a sender of acommunication.
 10. The method of claim 7 wherein the trust levelprovider is associated with a sending domain.
 11. The method of claim 7including blocking communications when confidence in the trust levelprovider is below a threshold confidence level.
 12. The method of claim7 including forwarding a received communication to a recipient alongwith a modified trust level.
 13. The method of claim 12 wherein thereceived trust level is modified by factoring in a confidence levelassigned to the trust level provider.
 14. The method of claim 7including determining whether a trust criterion is satisfied for acommunication based on a trust level associated with the communicationand a confidence level of the trust level provider that indicateswhether the trust level provider is assigning accurate trust levels. 15.The method of claim 1 including determining whether a trust criterion issatisfied for a communication based on trust level of the sender andconfidence level of the trust level provider.
 16. A computer-readablemedium for evaluating confidence in a trust level provider to assignaccurate trust levels, by a method comprising: receiving communications;receiving from the trust level provider trust levels associated with thecommunications, the trust levels indicating trust that a receivedcommunication is not an unwanted communication; and determining whetherthe trust level provider is assigning accurate trust levels based on ananalysis of whether the received communications are unwanted.
 17. Thecomputer-readable medium of claim 16 wherein the trust levels areassociated with the sender of a communication.
 18. The computer-readablemedium of claim 16 wherein the trust levels are associated with asending domain of a sender of a communication.
 19. The computer-readablemedium of claim 16 wherein the trust level provider is associated with asending domain.
 20. The computer-readable medium of claim 16 includingblocking communications when confidence in the trust level provider isbelow a threshold confidence.
 21. The computer-readable medium of claim16 including forwarding a received communication to a recipient alongwith a modified trust level.
 22. The computer-readable medium of claim21 wherein the received trust level is modified by factoring inconfidence that the trust level provider is providing accurate trustlevels.
 23. The computer-readable medium of claim 16 includingdetermining whether a trust criterion is satisfied for a communicationbased on trust level associated with the communication and confidence inthe trust level provider.
 24. The computer-readable medium of claim 16including determining whether a trust criterion is satisfied for acommunication based on trust level of the sender and confidence in thetrust level provider.
 25. A computer system for evaluating a trust levelprovider to assign accurate trust levels, comprising: a component thatreceives from the trust level provider trust levels associated withcommunications, the trust levels indicating trust that a receivedcommunication is not an unwanted communication; and determining whetherthe trust level provider is assigning accurate trust levels based on ananalysis of whether the communications are unwanted.
 26. The computersystem of claim 25 including a component that receives thecommunications.
 27. The computer system of claim 25 wherein the trustlevels are associated with the sender of a communication.
 28. Thecomputer system of claim 25 wherein the trust levels are associated witha sending domain of a sender of a communication.